Myucms code injection vulnerability

MyuCms is an intelligent customization system developed by ThinkPhp specifically for enterprises. myucms has a code issue vulnerability that can be exploited by attackers to cause code execution...

Myucms Cross-site Request Forgery Vulnerability (CNVD-2022-33818)

MyuCms is an intelligent customization system developed by ThinkPhp specifically set up for enterprises. myucms has a cross-site request forgery vulnerability that can be exploited by attackers to send unintended requests to the server...

Myucms Remote Code Execution Vulnerability

MyuCms is an intelligent customization system developed by ThinkPhp specifically for enterprises. myucms has a remote code execution vulnerability in version v2.2.1, which can be exploited by attackers to cause code execution...

Myucms cross-site request forgery vulnerability

MyuCms is a content management system based on ThinkPhp developed specifically for enterprises. myucms has a cross-site request forgery vulnerability in v2.2.1, which stems from a sql method in the product controllerindex.php file that does not correctly determine that the request originates from...

CVE-2020-21865

ThinkPHP50-CMS v1.0 contains a remote code execution RCE vulnerability in the component /public/?s=captcha...

MyuCms 代码问题漏洞

MyuCms is an intelligent customization system developed by ThinkPhp specifically set up for enterprises. myucms has a cross-site request forgery vulnerability that can be exploited by attackers to send unintended requests to the server...

GHSA-M7H5-FJJQ-559F SQL Injection in topthink/thinkphp

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

SQL Injection in topthink/thinkphp

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

CVE-2020-20120

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

CVE-2020-20120

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

Sql injection

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

CVE-2020-20120

CVE-2020-20120 affects ThinkPHP v3.2.3 and earlier. The vulnerability is a SQL injection that is triggered when an array is not passed to the methods where and query, allowing potentially arbitrary SQL execution. The NVD entry assigns a high base score (7.5 AV:N/AC:L/C:P/I:P/A:P) and a critical 3...

CVE-2020-20120

ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods...

ThinkPHP SQL注入漏洞

ThinkPHP is a PHP-based, open source, lightweight web application development framework from China's Top Thinking Information Technology Company. A SQL injection vulnerability exists in ThinkPHP because the product fails to properly handle user input. The vulnerability can be exploited to execute...

KiteCMS 跨站请求伪造漏洞

KiteCMS is a content management system developed on think php. KiteCMS version 1.1 is vulnerable to cross-site request forgery. An attacker can use this vulnerability to arbitrarily add an administrator account...

Dswjcms 跨站脚本漏洞

Dswjcms is for individuals and personal lending launched a free p2p open source project , based on Thinkphp architecture of the industry system , fully automated installation mode , quickly build a P2P website . Dswjcms 1.6.4 version of the existence of cross-site scripting vulnerability , the...

Dswjcms 代码问题漏洞

Dswjcms is for individuals and personal lending launched a free p2p open source project , based on Thinkphp architecture of the industry system , fully automated installation mode , quickly build a P2P website . Dswjcms 1.6.4 version of a security vulnerability , the vulnerability stems from...

WTCMS Cross-site Request Forgery Vulnerability (CNVD-2021-69267)

WTCMS is a content management system CMS based on ThinkPHP. index.php?g=admin in WTCMS...

WTCMS Cross-Site Scripting Vulnerability (CNVD-2021-69270)

WTCMS is a content management system CMS based on ThinkPHP. wtcms has a cross-site scripting vulnerability in the article source field under the article management module. No detailed vulnerability details are currently available...

WTCMS Cross-Site Scripting Vulnerability (CNVD-2021-69271)

WTCMS is a content management system CMS based on ThinkPHP.A cross-site scripting vulnerability exists in the link fields under the menu management module of the WTCMS backend. No detailed vulnerability details are provided at this time...